[2010] in linux-security and linux-alert archive

home help back first fref pref prev next nref lref last post

[linux-security] Re: IMAPD fix for RH

daemon@ATHENA.MIT.EDU (djb@redhat.com)
Tue Jul 21 01:35:21 1998

To: Jiva DeVoe <jiva@devware.com>
cc: linux-security@redhat.com, Duncan Simpson <dps@io.stargate.co.uk>
In-reply-to: <XFMail.980720183539.jiva@devware.com>  from Jiva DeVoe <jiva@devware.com>  on Mon, 20 Jul 1998 18:35:39 PDT.
Date: Mon, 20 Jul 1998 23:26:22 -0400
From: djb@redhat.com
Resent-From: linux-security@redhat.com
Resent-Reply-To: linux-security@redhat.com


> It appears that uninstalling the imap rpm uninstalls the pop mail service as
> well, or at least disables it.  Is this uncool?  Is it safe to leave it
> installed (but removed from inetd.conf) for the sake of keeping pop service in
> place?

I'm not sure, actually.  The POP code comes from the imap package, so
presumably you need to updated it *all* if you use any of it to make
sure you are safe from attack.  

I'd just update the package to the latest one and leave imap enabled.


--Donnie

--
 Donnie Barnes    http://www.redhat.com/~djb    djb@redhat.com   "Bah."
   Challenge Diversity.  Ignore People.  Live Life.  Use Linux.  879.
My Dad used to say I have deceptive quickness.  I'm slower than I look.

-- 
----------------------------------------------------------------------
Please refer to the information about this list as well as general
information about Linux security at http://www.aoy.com/Linux/Security.
----------------------------------------------------------------------

To unsubscribe:
  mail -s unsubscribe linux-security-request@redhat.com < /dev/null


home help back first fref pref prev next nref lref last post